Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1244
Views
0
Helpful
3
Replies

Monitoring ASA 5510 Tunnels

cbulleri
Level 1
Level 1

‎09-23-2008 10:43 AM - edited ‎02-21-2020 03:01 AM

Hi,

I'm trying to monitor Tunnels activity. We want to gather statistics like bandwidth utilization per Tunnel and in the case of Remote Access also the user name associated with a tunnel. All this via SNMP

I've browse through the Cisco-IPSec-Flow MIB and found the TunnelTable, this seems to provide everything I need in Regards to Tunnels, I just need a tip in how to calculate or obtain the bytes Tx and Rx. I can obtain packets and Octets amounts but not actual bytes. Is there another OID I should be inquiring?

In regard to Remote Access I found the CRASSessionTable From here I can obtain the Group associated with the tunnel and I should be able to obtain the User name through the 1.3.6.1.4.1.9.9.392.1.3.21.1.1 OID, but I'm getting an UnSupported response when querying this particular OID.

Anyone knows what OID can provide the User name?

I know that Cisco Performance Monitor can in fact obtain all that info from the ASA so there must be an appropriate OID I can query to obtain this particular info.

Many Thanks

Carlos

0 Helpful
3 Replies 3

sadbulali
Level 4
Level 4

‎09-29-2008 08:38 AM

1.3.6.1.4.1.9.9.392.1.3.21.1.1 OID under CISCO-REMOTE-ACCESS-MONITOR-MIB provides information about the username associated with a remote access session:

For more information refer to the url below:

http://tools.cisco.com/Support/SNMP/do/BrowseOID.do?local=en&translate=Translate&objectInput=1.3.6.1.4.1.9.9.392.1.3.21.1.1

0 Helpful

cbulleri
Level 1
Level 1
In response to sadbulali

‎09-29-2008 08:45 AM

You are correct, that is the OID that should contain the User name, but when I querie it I get and OID unsupported response.

Is there a problem with the IOS version? Or an I missing something else?

0 Helpful

merabtavart
Level 1
Level 1

‎07-22-2011 02:09 AM

Check

http://www.vpnttg.com/

Advantage   of VPNTTG over other SNMP based monitoring software’s is  following:   Other (commonly used) software’s are working with static OID  numbers,   i.e. whenever tunnel disconnects and reconnects, it gets  assigned a  new  OID number. This means that the historical data, gathered  on the   connection, is lost each time. However, VPNTTG works with VPN  peer’s  IP  address and it stores for each VPN tunnel historical  monitoring  data  into the SQL server and into the RRD (Round Robin  Database) file.

HTH

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card